$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/312D6572B0C104C0D51834C1B01CB0C593DAE8B4.cer File: 312D6572B0C104C0D51834C1B01CB0C593DAE8B4.cer (raw, json) Hash identifier: gcliONao4wGOLUeBel1pJLoYzZPC+tXy0GHf/6erlUw= Subject key identifier: 31:2D:65:72:B0:C1:04:C0:D5:18:34:C1:B0:1C:B0:C5:93:DA:E8:B4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C94B344071E201B9437B5E7840B4E4FD549B453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0/312D6572B0C104C0D51834C1B01CB0C593DAE8B4.mft caRepository: rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 Nov 2023 08:25:55 +0000 Certificate not after: Fri 15 Nov 2024 08:30:55 +0000 Subordinate resources: IP: 203.175.100.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:94:b3:44:07:1e:20:1b:94:37:b5:e7:84:0b:4e:4f:d5:49:b4:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 08:25:55 2023 GMT Not After : Nov 15 08:30:55 2024 GMT Subject: CN=312D6572B0C104C0D51834C1B01CB0C593DAE8B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1b:28:ca:0a:2d:8e:eb:6e:e2:f7:bd:33:dd: 98:ef:3a:53:32:67:65:03:bd:0a:e8:82:1d:3c:08: b4:72:f9:ab:1f:1f:ad:27:db:cb:52:48:8a:ad:bb: 12:76:d1:81:77:ac:07:6f:7f:10:b1:4b:f2:5a:a6: e0:93:64:66:df:27:9b:9e:c3:4d:ec:ff:40:a1:49: 23:cb:af:c2:0d:fc:fc:f1:2c:29:5b:aa:70:35:0f: a6:a4:5f:4f:08:9b:1a:3f:9c:7f:ab:e3:c2:21:d8: 45:9e:78:7b:ba:6d:c5:79:2a:20:2f:df:95:c1:c1: aa:8e:34:53:78:b1:b8:79:32:b4:52:31:05:30:af: 36:13:c6:de:f1:ae:b5:03:e6:e8:69:68:12:5e:c9: c2:90:07:ea:8f:ee:bc:c1:58:71:33:e7:27:fc:e8: 8a:36:19:3c:d2:83:ed:63:ef:26:72:c6:3e:95:7c: 03:75:7a:81:26:69:64:2c:a5:bd:7e:85:e3:16:85: 6b:32:20:c3:39:38:81:62:d7:71:a6:75:3b:28:6c: ba:b2:04:6b:51:af:8a:8a:aa:88:02:14:b0:c1:b5: 78:5d:ce:07:02:50:53:06:27:34:f2:e6:0b:13:26: 24:dd:71:d1:df:18:79:4b:fe:48:a7:27:b8:d3:6e: 5c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 31:2D:65:72:B0:C1:04:C0:D5:18:34:C1:B0:1C:B0:C5:93:DA:E8:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c998195f-14bb-41fd-b6ed-7a967c8e43df/0/312D6572B0C104C0D51834C1B01CB0C593DAE8B4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.100.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:56:95:c2:80:21:1e:48:bb:bb:a9:6a:d1:56:af:b9:1b:34: 62:07:73:d8:fe:00:2c:a6:30:ae:7d:01:f7:2e:c1:06:37:5b: d2:77:b1:c9:5b:24:ee:f8:fb:07:ca:a3:ec:2d:f4:82:7b:79: c4:54:51:d2:4d:3e:6c:70:1a:9a:ed:46:47:63:71:67:e5:0a: c4:dd:d5:1a:35:38:cc:08:2a:a5:af:f2:9c:45:a9:b2:27:36: c3:d2:9b:4d:90:cb:f1:13:5d:aa:99:2d:b7:73:83:1c:7e:17: 43:33:01:9f:82:a5:1d:1a:09:9a:a6:52:a1:f4:bf:9c:ac:de: 3a:48:28:0b:d4:44:13:82:9c:80:1d:86:2b:cc:36:1c:4a:90: 4c:86:22:a7:28:3f:7d:9a:16:1f:19:c5:f9:3d:ba:8d:70:bc: 89:01:bc:ff:87:a6:9c:09:69:3a:58:a6:6a:94:4e:3e:55:61: 89:64:2d:4f:43:0a:d1:d5:ab:bb:91:8f:62:42:ac:99:85:75: 28:1f:ad:ca:33:2e:1d:69:78:59:3c:31:63:5d:ec:fa:06:e2: fd:a4:f9:3d:95:8b:26:0b:62:c6:04:3d:12:fd:ef:80:8e:aa: 51:3b:8b:ac:b5:64:5a:69:78:22:e8:19:fd:d5:38:80:b8:7a: af:11:36:25 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPJSzRAceIBuUN7XnhAtOT9VJtFMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNzA4MjU1NVoX DTI0MTExNTA4MzA1NVowMzExMC8GA1UEAxMoMzEyRDY1NzJCMEMxMDRDMEQ1MTgz NEMxQjAxQ0IwQzU5M0RBRThCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsbKMoKLY7rbuL3vTPdmO86UzJnZQO9CuiCHTwItHL5qx8frSfby1JIiq27 EnbRgXesB29/ELFL8lqm4JNkZt8nm57DTez/QKFJI8uvwg38/PEsKVuqcDUPpqRf TwibGj+cf6vjwiHYRZ54e7ptxXkqIC/flcHBqo40U3ixuHkytFIxBTCvNhPG3vGu tQPm6GloEl7JwpAH6o/uvMFYcTPnJ/zoijYZPNKD7WPvJnLGPpV8A3V6gSZpZCyl vX6F4xaFazIgwzk4gWLXcaZ1OyhsurIEa1GvioqqiAIUsMG1eF3OBwJQUwYnNPLm CxMmJN1x0d8YeUv+SKcnuNNuXKUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDEtZXKwwQTA1Rg0wbAcsMWT2ui0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOTk4MTk1Zi0xNGJiLTQxZmQtYjZlZC03YTk2N2M4ZTQzZGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5OTgxOTVm LTE0YmItNDFmZC1iNmVkLTdhOTY3YzhlNDNkZi8wLzMxMkQ2NTcyQjBDMTA0QzBE NTE4MzRDMUIwMUNCMEM1OTNEQUU4QjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHLr2QwDQYJKoZIhvcNAQELBQADggEBAEtWlcKAIR5Iu7upatFWr7kbNGIHc9j+ ACymMK59AfcuwQY3W9J3sclbJO74+wfKo+wt9IJ7ecRUUdJNPmxwGprtRkdjcWfl CsTd1Ro1OMwIKqWv8pxFqbInNsPSm02Qy/ETXaqZLbdzgxx+F0MzAZ+CpR0aCZqm UqH0v5ys3jpIKAvURBOCnIAdhivMNhxKkEyGIqcoP32aFh8Zxfk9uo1wvIkBvP+H ppwJaTpYpmqUTj5VYYlkLU9DCtHVq7uRj2JCrJmFdSgfrcozLh1peFk8MWNd7PoG 4v2k+T2ViyYLYsYEPRL974COqlE7i6y1ZFppeCLoGf3VOIC4eq8RNiU= -----END CERTIFICATE-----Generated at Wed May 8 17:45:16 2024 by rpki-client on console-ams.rpki-client.org